US2003014641A1PendingUtilityA1

System for providing secure access to secure information

Priority: Jul 16, 2001Filed: Jul 16, 2001Published: Jan 16, 2003
Est. expiryJul 16, 2021(expired)· nominal 20-yr term from priority
H04L 2209/60H04L 9/0877
42
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A method and apparatus for utilizing a random token, preferably a non-repetitive “dumb token”, for secure access by authorized users to sensitive information, specifically as a part of a system where the security algorithm and/or the password cannot be modified and/or updated during consecutive data exchange sessions. The token is generated by the Token Generator (TG) and should be presented in machine readable form to a Token Processor (TP). The TP uses the token in order to generate a secure key and an encoding sequence. The key, which may be time varying, should be sent back to the TG where it is used to generate a decoding sequence. The TP encodes the secure information using the encoding sequence and sends it to the TG, which decodes the secure information using the decoding sequence.

Claims

exact text as granted — not AI-modified
What is claimed is:  
     
         1 . A system for providing secure access to secure information comprising: 
 a token in the possession of the token generator, where the token itself is random and non-predictable and contains no information but is used for the sole purpose of synchronization of the token processor and the token generator;    a token generator containing a transmitter used to pass the said token to a token processor;    a token processor having a reader for said token;    a token processor having the ability to generate a secure key to be used in the token generator to decipher an encrypted data sequence;    a token processor which has the ability to generate an encrypted data sequence based upon the secure key;    a token processor containing a transmitter used to pass the said secure key back to the token generator;    a token processor which has the ability to pass the encrypted data sequence for deciphering by the token generator;    a token generator which has the ability to receive the key from the token processor;    a token generator which has the ability to process the combination of the token and the key received from the token processor in order to decipher an encrypted data sequence;    
     
     
         2 . A system as claimed in  claim 1  wherein the said key is itself time-varying and non-predictable. The said key should be derived from the said token, though it is not solely dependent on it, whether the said token is time varying or constant.  
     
     
         3 . A system as claimed in  claim 1  wherein the algorithm used in the token processor to generate the encrypted data sequence is embedded inside the token processor itself, and the algorithm used in the token generator to decipher the encrypted data sequence is embedded inside the token generator itself. The algorithms used in token generator and the token processor must match each other.  
     
     
         5 . A system as claimed in  claim 1  wherein the said token can or cannot be modified by outside influences.  
     
     
         6 . A system as claimed in  claim 1  wherein the said key can or cannot be modified by outside influences.  
     
     
         7 . A system as claimed in  claim 1  wherein the algorithm used inside the token processor to generate the encrypted data sequence can or cannot be modified by outside influences.  
     
     
         8 . A system as claimed in  claim 1  wherein the algorithm used inside the token generator to decipher the encrypted data sequence can or cannot be modified by outside influences.

Join the waitlist — get patent alerts

Track US2003014641A1 — get alerts on status changes and closely related new filings.

We store only your email — no account needed. See our privacy policy.